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DETAILED ACTION 

This Office Action is in response to Amendment dated January 30, 2006. 

The Art Unit location of your application in the USPTO has changed. To aid in 
correlating any papers for this application, all further correspondence regarding this 
application should be directed to Art Unit 2617. 



Response to Arguments 

1 . Applicant's arguments filed have been fully considered but they are not 
persuasive. 

The Applicants argue that Yatsukawa fails to teach or suggest a next 

authentication as recited in independent claim 12 (see page 1 1 of the Remarks). The 

Examiner respectfully disagrees with the arguments because Yatsukawa teaches at 

column 16, lines 13-30: 

"As will be described later, the seed data D is used by the client for 
generating authentication data. Once an authentication request using the 
authentication data is granted, the client stores the generated 
authentication data to be used as seed data for generating authentication 
data for requesting authentication at the next log-in. Meanwhile, the 
server collates the received authentication data with the inspection 
data D stored in advance, and if it is verified, the server stores the 
received authentication data to be used as inspection data at the 
next log-in request from the client. In the system according to the 
present embodiment, since a value of seed data stored in the 
authentication-data-generating seed data file 204 is coincident with a 
value of inspection data stored in the inspection data file 105 at the server 
side, the value is expressed as in FIG. 13, for the purpose of 
descriptive convenience. Herein, the seed data and inspection data are 
expressed by D n .i in general because the data is generated at the 
previous log-in." 
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Clearly, the passage above teaches about authentication information to be used 
during next authentication. Hence, previous office action was appropriate. 

Furthermore, the Applicants argue that the cited reference fails to teach 
temporary identification of the mobile node (see page 12, first full paragraph of the 
Remarks). The Examiner once again disagrees with the Applicants because temporary 
identification is interpreted as an id such as client's email address, user's ID name and 
the like as taught by Yatsukawa (see col. 16, lines 4-12.) This identification is used to 
secure the communication but only temporarily used during the session. One skilled in 
the art would know that temporary identification could be an ID, mobile phone number, 
MAC, etc. Hence, the feature is known in the art and not novel. 

In response to Applicants' arguments regarding claim 31 (see page 12, second 
full paragraph of the Remarks), the Examiner apologizes for the confusion created by 
the way the rejection was written. The rejection contained a simple typographical error 
that has been corrected. The rejection was solely base don Yatsukawa as indicated by 

o 

the citations and the heading of the rejection. 

Furthermore, the Applicants argue in the very last paragraph of page 12 of the 
Remarks that Yatsukawa does not use previous authentication information. This is not 
true because as explained above, Yatsukawa teaches using the initial seed data D s o to 
generate the authentication data. In addition, the client stores the generated 
authentication data to be used as seed data for generating authentication data for 
requesting authentication at the next log-in means that in the next log-in or next 
authentication, the seed data has been previously generated and stored by the mobile 



Application/Control Number: 10/682,237 Page 4 

Art Unit: 2617 

node could be used again during the next authentication process. Hence, the claimed 
feature was taught by the provided prior art, and therefore previous rejection was 
proper. 

Claim Rejections - 35 USC § 102 

2. The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that 

form the basis for the rejections under this section made in this Office action: 
A person shall be entitled to a patent unless - 

(b) the invention was patented or described in a printed publication in this or a foreign country or in public 
use or on sale in this country, more than one year prior to the date of application for patent in the United 
States. 

3. Claims 12-15, and 30-31 are rejected under 35 U.S.C. 102(b) as being 
anticipated by Yatsukawa (US - 6,148,404). 

Regarding claim 12, Yatsukawa discloses a method for performing 
authentication by a mobile node in a wireless local area network including at least two 
access points for setting up wireless association with the mobile node and an 
authentication server for authenticating the mobile node, the method comprising the 
steps of: 

when associating with a first access point and performing initial 
authentication, generating a first private key with a secret previously shared 
with the authentication server (col. 16, lines 56-61); 
generating first authentication information to be used during next 
authentication request, and transmitting a first enciphered message 
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generated by enciphering the first authentication information with the first 
private key to the authentication server (col. 16, lines 61-67); 
upon receiving a second enciphered message from the authentication server 
in response to the first enciphered message, acquiring a first session key by 
deciphering the second enciphered message with the first private key (col. 
17, lines 1-13); 

performing secure communication with the first access point by using the 
first session key (col. 17, lines 14-18). 
Regarding claim 13, Yatsukawa discloses the method of claim 12 as described 
above. Yatsukawa also discloses wherein the first authentication information includes a 
temporary identifier of the mobile node, a password for generating a private key to be 
used during next authentication, and a random number (col. 16, lines 45-52; fig. 2, 
"A1"). 

Regarding claim 14, Yatsukawa discloses the method of claim 13 as described 
above. Yatsukawa also discloses wherein the first enciphered message includes a 
permanent identifier of the mobile node and the first authentication information (fig. 5, 
"authentication token"). 

Regarding claim 15, Yatsukawa discloses the method of claim 13 as described 
above. Yatsukawa also discloses wherein the second enciphered message includes 
the random number and the first session key (fig. 6, "C5" and its descriptions). 

Regarding claim 30, Yatsukawa discloses a method of performing 
authentication of a mobile node by an access point with which the mobile node initially 
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associates or re-associates due to handover, in a wireless local area network including 
the access point for setting up association with the mobile node and an authentication 
server for authenticating the mobile node, the method comprising the steps of (title, and 
abstract): 

when associating with the mobile node and performing authentication, 
receiving an enciphered message from the authentication server (col. 16, 
lines 53-67); 

acquiring a session key for secure communication with the mobile node by 
deciphering the enciphered message with a private key previously shared 
with the authentication server (col. 17, lines 1-13); 

performing secure communication with the mobile node by using the session 

key (col. 17, lines 14-18). 
Regarding claim 31, Yatsukawa discloses the method of claim 30 as described 
above. Yatsukawa also discloses wherein the enciphered message includes a 
temporary identifier generated by the mobile node during previous authentication, and a 
random number (figs. 3, 5 & 6; and its descriptions). 

Claim Rejections - 35 USC § 103 

4. The following is a quotation of 35 U.S.C. 1 03(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 1 02 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 
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5. Claims 32-33 are rejected under 35 U.S.C. 103(a) as being unpatentable over 
Yatsukawa in view of Zhang et al. (hereinafter "Zhang") (US 2002/01 74335 A1 ). 

Regarding claim 32, Yatsukawa discloses a method for authenticating a mobile 
node in a wireless local area network including at least two access points for setting up 
wireless association between the mobile node and an authentication server for 
authenticating the mobile node, the method comprising the steps of: 

generating, at the mobile node, a mobile private key with a security word 

shared with the authentication server (col. 16, lines 56-61); 

generating authentication information to be used in a next authentication 

procedure (col. 16, lines 13-30); 

transmitting the authentication information to the authentication server 
(abstract); 
Yatsukawa fails to disclose: 

transmitting a session key from the authentication server to the mobile node 
and the access point; and 

communicating between the mobile terminal and the access point using the 
session key. 

In a similar endeavor, Zhang discloses an IP-based AAA scheme for wireless 
LAN virtual operators. Zhang further teaches: 

transmitting a session key from the authentication server to the mobile node 
and the access point (paragraph 0045); and 
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communicating between the mobile terminal and the access point using the 
session key (paragraph 0045). 
It would have been obvious to one of ordinary skill in the art at the time the 

invention was made to combine Yatsukawa's invention with transmitting a session key 

from the authentication server in order to secure the communication between the 

devices in the network. 

Regarding claim 33, Yatsukawa, and Zhang disclose the method of claim 32 as 

described above. Yatsukawa further discloses wherein the step of transmitting the 

authentication information includes: 

generating a first enciphered message by enciphering the first authentication 
information with the mobile private key (fig. 4, and its descriptions); and 
transmitting the first enciphered message to the authentication server (fig. 4, 
and its descriptions). 

Allowable Subject Matter 

6. Claims 1-11, 20-29 are allowed. Independent claims 1 and 20 are allowed as 
previously indicated in Office Action dated October 28, 2005. 

7. Claims 16-19 (previously indicated in Office Action dated October 28, 2005), and 
34-35 are objected to as being dependent upon a rejected base claim, but would be 
allowable if rewritten in independent form including all of the limitations of the base 
claim and any intervening claims. 
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Conclusion 

8. The prior art made of record and not relied upon is considered pertinent to 
applicant's disclosure. 

Ohba et al. (US 2004/0098588) 
Norefors et al. (US 6,370,380) 
Redlich et al. (US 2002/0138635) 
Faccinet al. (US 6,876,747) 
Rose (US 6,771,776) 
Meier (US 2004/0103282) 

9. Applicant's amendment necessitated the new ground(s) of rejection presented in 
this Office action. Accordingly, THIS ACTION IS MADE FINAL. See MPEP 

§ 706.07(a). Applicant is reminded of the extension of time policy as set forth in 37 
CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within 
TWO MONTHS of the mailing date of this final action and the advisory action is not 
mailed until after the end of the THREE-MONTH shortened statutory period, then the 
shortened statutory period will expire on the date the advisory action is mailed, and any 
extension fee pursuant to 37 CFR 1.136(a) will be calculated from the mailing date of 
the advisory action. In no event, however, will the statutory period for reply expire later 
than SIX MONTHS from the date of this final action. 
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Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Wayne Cai whose telephone number is (571) 272-7798. 
The examiner can normally be reached on Monday-Friday; 9:00-6:00; alternating Friday 



If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Due Nguyen can be reached on (571 ) 272-7503. The fax phone number for 
the organization where this application or proceeding is assigned is 571-273-8300. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free)."^ ^ //. * ^ 



off. 




Wayne 'Cai 
Examiner 
Art Unit 2617 



ELISEORAMOS-FEUCIANO 
PRIMARY EXAMINER 



